stunnel4 is compiled with old openssl library
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
stunnel4 (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
Ubuntu 14.04.1, amd64
stunnel4 - 3:4.53-1.1ubuntu1
stunnel reports that is was compiled with old library (OpenSSL 1.0.1e 11 Feb 2013):
# stunnel -v
Clients allowed=500
stunnel 4.53 on x86_64-pc-linux-gnu platform
Compiled with OpenSSL 1.0.1e 11 Feb 2013
Running with OpenSSL 1.0.1f 6 Jan 2014
Update OpenSSL shared libraries or rebuild stunnel
Threading:PTHREAD SSL:+ENGINE+OCSP Auth:LIBWRAP Sockets:POLL+IPv6
Reading configuration from descriptor 3
Compression not enabled
PRNG seeded successfully
Initializing inetd mode configuration
Section stunnel: SSL server needs a certificate
str_stats: 2 block(s), 10 data byte(s), 116 control byte(s)
Ubuntu 12.04.5 is linked with older version of library (OpenSSL 1.0.1 14 Mar 2012) :
# stunnel -v
No limit detected for the number of clients
signal_pipe: FD=4 allocated (non-blocking mode)
signal_pipe: FD=5 allocated (non-blocking mode)
stunnel 4.42 on i686-pc-linux-gnu platform
Compiled/running with OpenSSL 1.0.1 14 Mar 2012
Threading:PTHREAD SSL:ENGINE Auth:LIBWRAP Sockets:POLL,IPv6
Reading configuration from descriptor 3
Snagged 64 random bytes from /home/psl/.rnd
Wrote 1024 new random bytes to /home/psl/.rnd
PRNG seeded successfully
Line 0: End of section stunnel: SSL server needs a certificate
tags: | added: stunnel |
tags: | added: old openssl |
Status changed to 'Confirmed' because the bug affects multiple users.